Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,335
Erlang
31
GitHub Actions
22
Go
2,096
Maven
5,000+
npm
3,762
NuGet
678
pip
3,448
Pub
12
RubyGems
892
Rust
882
Swift
37
Unreviewed advisories
All unreviewed
5,000+

983 advisories

Loading
Roothub v2.5 was discovered to contain an arbitrary file upload vulnerability via the customPath... Critical Unreviewed
CVE-2024-33120 was published May 7, 2024
An arbitrary file upload vulnerability in Zhongcheng Kexin Ticketing Management Platform 20.04... Critical Unreviewed
CVE-2024-33786 was published May 3, 2024
Voltronic Power ViewPower Pro UpLoadAction Unrestricted File Upload Remote Code Execution... Critical Unreviewed
CVE-2023-51590 was published May 3, 2024
Critical unrestricted file upload vulnerability in HubBank affecting version 1.0.2. This... Critical Unreviewed
CVE-2024-4306 was published Apr 29, 2024
Unauthenticated file upload allows remote code execution. This issue affects UvDesk Community:... Critical Unreviewed
CVE-2024-0916 was published Apr 26, 2024
ThinkCMF 6.0.9 is vulnerable to File upload via UeditorController.php. Critical Unreviewed
CVE-2024-31615 was published Apr 25, 2024
pyLoad allows upload to arbitrary folder lead to RCE Critical
CVE-2024-32880 was published for pyload-ng (pip) Apr 24, 2024
zhcy2018
Unrestricted Upload of File with Dangerous Type vulnerability in Unlimited Elements Unlimited... Critical Unreviewed
CVE-2023-31090 was published Apr 24, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in Tribulant Newsletters.This issue... Critical Unreviewed
CVE-2024-32954 was published Apr 24, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in WP Lab WP-Lister Lite for eBay... Critical Unreviewed
CVE-2024-32836 was published Apr 24, 2024
A File Upload vulnerability in DedeCMS v5.7 allows a local attacker to execute arbitrary code via... Critical Unreviewed
CVE-2024-29661 was published Apr 22, 2024
jizhiCMS 2.5 suffers from a File upload vulnerability. Critical Unreviewed
CVE-2024-32161 was published Apr 17, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in Poll Maker & Voting Plugin Team ... Critical Unreviewed
CVE-2024-32514 was published Apr 17, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in Jordy Meow AI Engine: ChatGPT... Critical Unreviewed
CVE-2023-51409 was published Apr 12, 2024
qdrant/qdrant is vulnerable to a path traversal and arbitrary file upload vulnerability via the `... Critical Unreviewed
CVE-2024-2221 was published Apr 10, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in J.N. Breetvelt a.K.A. OpaJaap WP... Critical Unreviewed
CVE-2024-31286 was published Apr 7, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in Andy Moyle Church Admin.This... Critical Unreviewed
CVE-2024-31280 was published Apr 7, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in Sukhchain Singh Auto Poster.This... Critical Unreviewed
CVE-2024-31345 was published Apr 7, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in Themeisle Multiple Page... Critical Unreviewed
CVE-2024-27951 was published Apr 3, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in InstaWP Team InstaWP Connect... Critical Unreviewed
CVE-2024-25918 was published Apr 3, 2024
An issue was discovered in SEMCMS v.4.8, allows remote attackers to execute arbitrary code,... Critical Unreviewed
CVE-2024-31012 was published Apr 3, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in biplob018 Shortcode Addons.This... Critical Unreviewed
CVE-2024-31114 was published Mar 31, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in QuanticaLabs Chauffeur Taxi... Critical Unreviewed
CVE-2024-31115 was published Mar 31, 2024
An file upload vulnerability in Ivanti ITSM before 2023.4, allows an authenticated remote user to... Critical Unreviewed
CVE-2023-46808 was published Mar 31, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in Salon Booking System Salon... Critical Unreviewed
CVE-2024-30510 was published Mar 29, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database